medium
6.5
CWE
346
CVE Published
Advisory Published
CVE Published
Updated

CVE-2024-36472

First published: Tue May 28 2024(Updated: )

In GNOME Shell through 45.7, a portal helper can be launched automatically (without user confirmation) based on network responses provided by an adversary (e.g., an adversary who controls the local Wi-Fi network), and subsequently loads untrusted JavaScript code, which may lead to resource consumption or other impacts depending on the JavaScript code's behavior.

Credit: cve@mitre.org cve@mitre.org

Affected SoftwareAffected VersionHow to fix
debian/gnome-shell<=3.38.6-1~deb11u2<=43.9-0+deb12u2<=46.4-1
redhat/gnome-shell<45.8
45.8

Remedy

https://gitlab.gnome.org/GNOME/gnome-shell/-/merge_requests/3307

Remedy

https://gitlab.gnome.org/GNOME/gnome-shell/-/merge_requests/3408

Remedy

https://gitlab.gnome.org/GNOME/gnome-shell/-/commit/5aa89fa9e62d20c99afd2eff13901faef96244ad

Remedy

https://gitlab.gnome.org/GNOME/gnome-shell/-/commit/57de9ee874bff07b71dc323e54d5d721c4ded7fe

Remedy

https://gitlab.gnome.org/GNOME/gnome-shell/-/commit/4ab1ccf3f21b754ce4be77becf5df46084a893d8

Remedy

https://gitlab.gnome.org/GNOME/gnome-shell/-/commit/14037478633c15a38a63d46af5f7d28bc00fd376

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203